[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #19055 [Applications/Tor Browser]: TBB Upstreaming of Yawning's Firejail Script



#19055: TBB Upstreaming of Yawning's Firejail Script
--------------------------------------+--------------------------
 Reporter:  cypherpunks               |          Owner:  tbb-team
     Type:  enhancement               |         Status:  new
 Priority:  Medium                    |      Milestone:
Component:  Applications/Tor Browser  |        Version:
 Severity:  Normal                    |     Resolution:
 Keywords:                            |  Actual Points:
Parent ID:                            |         Points:
 Reviewer:                            |        Sponsor:
--------------------------------------+--------------------------

Comment (by adrelanos):

 Current:
 https://gitweb.torproject.org/builders/tor-browser-
 bundle.git/tree/RelativeLink/start-tor-browser

 Proposed:
 https://git.schwanenlied.me/yawning/tor-firejail/src/master/start-tor-
 browser

 The diff looks reasonable. Should be safe for with non-firejail users.

 {{{
 > #
 > # Automagic sandboxing based on firejail if it's available.
 > #
 > BROWSER_CMD=./firefox
 > if [ -x /usr/bin/firejail ]; then
 >   BROWSER_CMD="/usr/bin/firejail --profile=${HOME}/tor-browser.profile \
 >     --env=LD_LIBRARY_PATH=${LD_LIBRARY_PATH} \
 >     --env=FONTCONFIG_PATH=${FONTCONFIG_PATH} \
 >     --env=FONTCONFIG_FILE=${FONTCONFIG_FILE} \
 >     --env=ASAN_OPTIONS=${ASAN_OPTIONS} \
 >     --whitelist=${HOME} \
 >     ./firefox"
 > fi
 >
 359c373
 <     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ./firefox --class "Tor
 Browser" \
 ---
 >     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ${BROWSER_CMD} --class "Tor
 Browser" \
 363c377
 <     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ./firefox --class "Tor
 Browser" \
 ---
 >     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ${BROWSER_CMD} --class "Tor
 Browser" \
 367c381
 <     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ./firefox --class "Tor
 Browser" \
 ---
 >     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ${BROWSER_CMD} --class "Tor
 Browser" \
 371c385
 <     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ./firefox --class "Tor
 Browser" \
 ---
 >     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ${BROWSER_CMD} --class "Tor
 Browser" \
 374c388
 <     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ./firefox --class "Tor
 Browser" \
 ---
 >     TOR_CONTROL_PASSWD=${TOR_CONTROL_PASSWD} ${BROWSER_CMD} --class "Tor
 Browser" \
 }}}

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/19055#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs